$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CAF5CED2E1A511EC8AB72944C4F9AE02.roa File: CAF5CED2E1A511EC8AB72944C4F9AE02.roa (raw, json) Hash identifier: VwKaIz3U6aDghRoNhWv7S/G0XuOUWwKqRpkvmSggRD4= Subject key identifier: 67:76:57:95:4A:59:5C:20:44:7C:28:D6:7B:FB:81:BB:AC:CA:E4:92 Certificate issuer: /CN=A91CE39F/serialNumber=4FFFAC717813392EE1C876A321671E1D6C2AB9B4 Certificate serial: 0715 Authority key identifier: 4F:FF:AC:71:78:13:39:2E:E1:C8:76:A3:21:67:1E:1D:6C:2A:B9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CAF5CED2E1A511EC8AB72944C4F9AE02.roa Signing time: Tue 28 May 2024 23:03:55 +0000 ROA not before: Tue 28 May 2024 23:03:55 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.151.192.0/24 maxlen: 24 103.151.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.crl rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1813 (0x715) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE39F/serialNumber=4FFFAC717813392EE1C876A321671E1D6C2AB9B4 Validity Not Before: May 28 23:03:55 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=665662da-afd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e8:65:c8:ec:3c:88:67:78:f3:e2:c8:b1:25: 57:65:e4:01:26:88:f7:26:4a:fb:b4:ed:aa:dc:6e: 20:9b:5b:9b:fc:8a:b2:62:7e:c3:1a:14:07:30:f2: 05:ea:f6:a5:85:d2:21:ea:8f:21:50:a1:77:9c:e5: fc:3d:1f:76:bd:d5:75:29:31:f6:99:76:b7:99:d3: 23:f5:32:e4:4c:60:6c:c6:a8:8b:8b:55:88:4d:10: c6:d2:ea:53:76:70:62:9b:0f:b1:c3:59:f7:47:f3: 33:98:ab:cf:b5:9a:08:66:a4:ea:14:f1:e9:9a:26: 3d:ce:d1:6d:d9:e3:4d:cc:b2:9e:1c:b4:aa:57:3b: 40:fd:e8:47:c9:7a:8a:20:ad:32:7c:e3:69:ca:be: 43:28:26:06:0e:04:b8:18:4a:85:ea:57:d7:a6:14: a4:0b:b3:39:84:bb:54:5e:1b:54:99:11:e6:d2:ff: 64:92:38:9f:20:73:49:3a:f8:e1:47:c1:db:a9:bd: bc:78:d1:af:98:27:02:a7:42:95:1c:3b:3a:9a:e7: bc:10:6c:f3:0b:e8:6b:a1:a8:83:2f:90:fb:16:53: 93:6e:f0:76:49:7c:37:6e:1d:34:c6:77:72:74:97: 04:c9:a7:d6:68:35:3b:89:a2:64:05:20:b9:8e:0d: 42:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:76:57:95:4A:59:5C:20:44:7C:28:D6:7B:FB:81:BB:AC:CA:E4:92 X509v3 Authority Key Identifier: keyid:4F:FF:AC:71:78:13:39:2E:E1:C8:76:A3:21:67:1E:1D:6C:2A:B9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CAF5CED2E1A511EC8AB72944C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.192.0/23 Signature Algorithm: sha256WithRSAEncryption 27:eb:0d:72:0b:b4:40:a3:75:cc:bc:9c:3e:13:f5:a2:af:93: 18:68:c4:6d:f3:c6:dd:c6:a7:58:01:4b:d0:f3:cd:6f:d7:23: db:6a:dc:21:95:bd:97:01:98:90:b6:c4:69:95:9c:30:12:7a: de:3f:97:04:21:85:d6:88:7f:a6:97:e0:c9:d2:19:f3:a7:ff: 3e:6d:70:34:2c:ee:fb:84:68:44:3b:1c:c9:60:44:c7:c6:c2: f0:9f:0e:69:b7:14:d2:a5:84:0c:10:1f:ad:b8:81:96:30:80: 7d:a1:f4:bc:f5:0a:49:c0:e6:fe:d5:1e:e7:b2:67:69:2f:86: e8:63:b3:db:c2:f0:7b:68:10:40:68:ed:0d:80:34:21:e8:5d: 3d:ed:53:4c:14:20:81:7d:04:9b:ee:75:ae:ea:af:fc:45:a7: 2d:2e:fe:6d:4b:8c:55:81:de:7b:fe:36:fa:25:74:53:00:39: 85:f5:44:c7:ff:7a:f5:8c:b9:b1:56:d7:60:31:56:78:2a:39: fc:f5:bd:0d:bc:69:09:56:a7:2b:91:e2:1b:7c:51:51:38:69: 92:21:24:ea:91:7e:7a:14:5d:bd:9f:09:9e:60:9b:ef:b1:a2: 9e:c8:fe:cf:e4:15:6b:06:b4:c8:88:ac:96:4d:49:45:e4:bf: 8d:df:6b:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzOUYxMTAvBgNVBAUTKDRGRkZBQzcxNzgxMzM5MkVFMUM4NzZBMzIxNjcxRTFE NkMyQUI5QjQwHhcNMjQwNTI4MjMwMzU1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NjJkYS1hZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquhlyOw8iGd48+LIsSVXZeQBJoj3Jkr7tO2q3G4gm1ub/IqyYn7DGhQHMPIF 6valhdIh6o8hUKF3nOX8PR92vdV1KTH2mXa3mdMj9TLkTGBsxqiLi1WITRDG0upT dnBimw+xw1n3R/MzmKvPtZoIZqTqFPHpmiY9ztFt2eNNzLKeHLSqVztA/ehHyXqK IK0yfONpyr5DKCYGDgS4GEqF6lfXphSkC7M5hLtUXhtUmRHm0v9kkjifIHNJOvjh R8Hbqb28eNGvmCcCp0KVHDs6mue8EGzzC+hroaiDL5D7FlOTbvB2SXw3bh00xndy dJcEyafWaDU7iaJkBSC5jg1C2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGd2V5VK WVwgRHwo1nv7gbusyuSSMB8GA1UdIwQYMBaAFE//rHF4Ezku4ch2oyFnHh1sKrm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM5Ri9DMTVDNDFCNEZE NTcxMUVBQkMzQ0EyNERDNEY5QUUwMi9UXy1zY1hnVE9TN2h5SGFqSVdjZUhXd3F1 YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfLXNjWGdUT1M3aHlIYWpJV2NlSFd3cXViUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzOUYvQzE1QzQxQjRGRDU3MTFFQUJDM0NBMjREQzRGOUFFMDIvQ0FGNUNFRDJF MUE1MTFFQzhBQjcyOTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnl8AwDQYJKoZIhvcNAQELBQADggEBACfrDXILtECjdcy8 nD4T9aKvkxhoxG3zxt3Gp1gBS9DzzW/XI9tq3CGVvZcBmJC2xGmVnDASet4/lwQh hdaIf6aX4MnSGfOn/z5tcDQs7vuEaEQ7HMlgRMfGwvCfDmm3FNKlhAwQH624gZYw gH2h9Lz1CknA5v7VHueyZ2kvhuhjs9vC8HtoEEBo7Q2ANCHoXT3tU0wUIIF9BJvu da7qr/xFpy0u/m1LjFWB3nv+NvoldFMAOYX1RMf/evWMubFW12AxVngqOfz1vQ28 aQlWpyuR4ht8UVE4aZIhJOqRfnoUXb2fCZ5gm++xop7I/s/kFWsGtMiIrJZNSUXk v43fa3o= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:54 2024 by rpki-client on console-ams.rpki-client.org